Re: wifi firmware for lenovo thinkpad E420
Siju George sgeorge.ml2 at gmail.com writes: On Fri, May 11, 2012 at 12:11 AM, Henning Brauer lists-openbsd at bsws.de wrote: I have one of these somewhere - basically, all that is needed is a pci attachment for the existing urtwn. shouldn't be too hard, but as usual - somebody has to do it. Hope somebody does this for 5.2 Thanks --Siju I also have one of these mini PCIe cards. Has any progress been made on getting this going over PCI?
Re: Easy for a newbie to manage an OpenBSD server?
Thee: In your experience, would it be possible for someone with no *NIX Thee: experience to maintain a simple FTP server? In my opinion, OpenBSD is the most logical and straight forward UNIX-like operating system around. There isn't much in the way of how-to's and tutorials, but it is straight forward to learn via the man pages, the documentation on the OpenBSD site and with a couple of books that I have. How long would you trust an unpatched OpenBSD server to go unhacked? That depends entirely on what the absent patches cover. It is impossible to say really. How long is a piece of string? Best regards, Craig http://slashboot.org/ Support OpenBSD http://www.openbsd.org/orders.html On 01/08/06, Titan [EMAIL PROTECTED] wrote: I have quite a predicament. I have been tasked with setting up an FTP server for the research group I'm involved with. The problem is once I'm gone someone with no *NIX experience will be maintaining the server. I've been considering using OpenBSD because it looks like it can go far longer without updates than Windows and Linux servers and looks to be very secure. In your experience, would it be possible for someone with no *NIX experience to maintain a simple FTP server? How long would you trust an unpatched OpenBSD server to go unhacked? Thanks for your help.
machdep.userldt implications.
Hi all. I've been googling around for the answer to this, but can't find anything concrete to answer it one way or another, or at least not that I understood. ;) I am presuming that it wouldn't be a good idea to set machdep.userldt to 1, by default and that I should enable it and disable it, as and when I need to make use of it. So far, I only need it for the win32-codecs package. I would assume that allowing userland apps to play with the local descriptor table, would be a security nightmare, unless I was only using base software, where I wouldn't need to enable it anyway. Thanks for any advice / opinions offered. Best regards, Craig 72 characters width template -|
machdep.userldt implications
Hi all. I've been googling around for the answer to this, but can't find anything concrete to answer it one way or another, or at least not that I understood. ;) I am presuming that it wouldn't be a good idea to set machdep.userldt to 1, by default and that I should enable it and disable it, as and when I need to make use of it. So far, I only need it for the win32-codecs package. I would assume that allowing userland apps to play with the local descriptor table, would be a security nightmare, unless I was only using base software, where I wouldn't need to enable it anyway. Thanks for any advice / opinions offered. Also, apologies if this comes through twice, my first attempt wasn't plain-text, as I'm still tinkering with Thunderbird. :( Best regards, Craig
Re: machdep.userldt implications.
Jeff Quast wrote: The lock-ups may have been related to the caveat in the manual page for emu(4), which I have since removed from the system for this very reason. Well, I didn't realise that one. I've always sworn by Creative cards up until now and I have a fair few SBLive cards here :( Looks like I may be swearing at them now though. Thanks for the heads up on that. Best regards, Craig 72 characters width template -|
Re: machdep.userldt implications.
Ted Unangst wrote: On 2/20/06, Craig McCormick [EMAIL PROTECTED] wrote: I am presuming that it wouldn't be a good idea to set machdep.userldt to 1, by default and that I should enable it and disable it, as and when I need to make use of it. So far, I only need it for the win32-codecs package. I would assume that allowing userland apps to play with the local descriptor table, would be a security nightmare, unless I was only using base software, where I wouldn't need to enable it anyway. do you really have multiple [untrusted] users on your desktop? No, as far as I am aware, I am the only person who uses my desktop machines. =) I'd done my googling and after reading around, just wanted to run it by the list. I was wondering if enabling it might, for example, allow firefox to change something to give itself further priveledges and that this might be exploited via some as yet undiscovered bug or vulnerability. Firefox is a crock that I seem unable to live without, as yet. ;) Maybe this paranoia is getting the better of me, my programming knowledge is worlds away from being able to figure this out for myself, so I thought it best to ask. Regards, Craig
Re: OpenBSD for a desktop environment ?
Bruno. I'd been experiencing terrible problems with FreeBSD and Gnome and so I chose to install OpenBSD 3.8 and fluxbox So far, so good and it's all operating very smoothly and reliably. So far, the only application that I haven't brought on board is Evolution which I really need, but I am making do with Thunderbird for now. To be honest, it's been much more straight forward to set this up, than it ever has been with the so-called more user friendly FreeBSD. It will depend on whether there is support for your applications of choice, in OpenBSD, but from what I see so far, there isn't any reason not to run OpenBSD as a desktop/workstation environment. If fact, it's inspired me to put together a 'how-to' of sorts, for OpenBSD newbies. Best regards, Craig Hi all, I'd like to know if someone tried to build a desktop environment on OpenBSD/i386. I think to rich desktop like Gnome or KDE. Is it hard ? What's your feedback ? Best regards, Bruno.
Re: OpenBSD security could be tightened up easily
Being a genuine novice wrt OpenBSD, I am not overly qualified to pass judgement here. However, I read pretty much everything that is posted to misc@ and have read every one of Dave's troll-like rants, for the last couple of months. Sorry Dave, but from here you appear to be either a troll, an M$ employee or even more of a novice than I. I would like to offer you some genuine advice: Go out and buy Absolute OpenBSD: UNIX for the Practical Paranoid By Michael Lucas - ISBN: 1886411999 (if you don't already own it) and before you do anything else, read chapter 1, particularly page 17. I apologise if I cause offence by posting this, but it has been really getting on my nerves. Regards Craig On Sun, 2006-02-05 at 08:09 -0500, Dave Feustel wrote: OpenBSD's handling of file permissions needs work. Good security practice requires that root's default permission set by umask should be 077. But setting root's umask to this value breaks the package install mechanism since all files installed by root with umask 077 are unavailable to users. Also, all x11 and kde sockets are created with permissions up to and including 777 that can be restricted with no loss of functionality. I now routinely chmod all sockets in /tmp and $TMPDIR to 600 immediately upon starting up kde and have seen no errors generated by this. The problem with insecure [tp]ty allocation in kde is still not fixed as far as I know, although I see a new kdelibs in errata. (this problem occurs only in OpenBSD so far as I know), It might also be a good idea to run pf by default with the rule block all in to prevent intruders taking advantage of undiagnosed security problems in kde or x11. ALL of my strange problems with kde have ceased since I started running pf with this rule. Having said this, I would like to add that OpenBSD looks better than ever to me now and I recommend it highly to people I talk to. OpenBSD is the Rock upon which I build everything else. Dave Feustel
Re: openbsd's future plans?
Now I don't feel at all bad about not being able to run bsd.mp on my clunky old dual-266 Dell PowerEdge 4200. Pah! Programmers nowadays, no idea of commitment! ;) On Tue, 2006-02-07 at 22:36 -0600, Benjamin Collins wrote: On Tue, Feb 07, 2006 at 08:51:31PM -0500, Nick Holland wrote: digressed a bit (I'm sure that surprises everyone here that I'd do that), Shocked! Anyway, to folks who are wondering about SMP, all you have to do is notice how little traffic there is on smp@ and how (relatively) few commits there are that deal with smp. Writing quality SMP code is a *monumentous* task. I work for a contracts-based software shop, and if I had to bid that one, I'd bid hundreds of man-hours, if not thousands. If the core team of OpenBSD developers is 50 people, there might be 4-5 people who could concentrate all their OpenBSD efforts on this (just picking those numbers of of thin air) If it takes 5000 man-hours to get scalable, robust SMP code written, then we're talking 25 weeks of full-time work for each of those 5 people. I don't know about you guys, but I can't take 25 weeks off from work, and my spare time each week adds up to about to *maybe* 20-25 hours, and that's *everything*. If I were to say ok, I'll contribute 1000 hours, and I totally ignored my wife and kids, my parents, her parents, all my friends, community activites, etc., I'd be doing nothing but sleeping, working my paid job, and working OpenBSD for 40-50 weeks. It would take a year to get what folks are asking for --- and that's assuming 4 other people doing exactly the same thing. My estimates could be off, but I think the ballpark is good enough to get the point across. Even if I'm off by 2x, that's still 6 months of 5 people doing *nothing else* but OpenBSD. [demime 1.01d removed an attachment of type application/pgp-signature]
Re: OpenBSD hardware router
Have you checked out the Soekris boxes at kd85.com? Regards, Craig On Thu, 2006-02-02 at 14:41 -0600, Kenny Mann wrote: I'm looking for something that which I can slap OpenBSD 3.8 on and use it as a router. This will be used for a house (~ 4 people) and I'm looking for something small in form factor and that which doesn't run hot because it will run in a closet. I'm seeking to replace our D-Link router because it seems to lock up on an occasion and this seem like a fun little project to do. I'd also like it to have wireless capabilities as well. Anyone know where I can start looking or can point in a direction to start? Or are my hopes too high and I should just get a PC and make it happen that route (pun not intended)? Kenny Mann
Buy OpenBSD CD set in UK. Which benefits OpenBSD most?
Hi. Not sure if this is the right place for this post and I can't find anything to answer the question on the site. I think it time I bought a CD set and was wondering which method benefits the project most, financially? I'm in the UK, by the way. kd85.com would entail paying for Belgium - UK shipping which if this is a reasonable cost is a moot point for me. I could go through Cortex or Holborn Books in the UK, but it looks like they will probably get a large chunk of the proceeds. I'm presuming that through kd85.com, the OpenBSD project would profit more than through a reseller? I ask, as I intend to more or less 'subscribe' and continue buying further releases and I don't like to waste even pennies, let alone pounds. That's on top of the wish to make sure that OpenBSD benefit most and not some courier service. Tight as a duck's arse, I know, but it's the thought that counts and the main point in buying is to support the project, not unrelated third parties. Best regards, Craig
Re: Buy OpenBSD CD set in UK. Which benefits OpenBSD most?
Thanks for the replies people. Sorry, I should have made another point. I would happily donate, if I were lucky/good enough to make a living from the use and/or support of OpenBSD. At present however, I am merely an enthusiast, trying to get it in place on 4 or 5 of my own machines. So, without sounding too tight fisted, I think that buying CD sets, rather than simply downloading a boot CD and ftp installing, is probably the best and most appropriate way for me to do my bit and give a bit back, so to speak. From what I see, me being in the UK, buying from kd85.com would be the best way, from the OpenBSD project's point of view. Thanks. Craig On Thu, 2006-01-05 at 21:03 +, Craig McCormick wrote: Hi. Not sure if this is the right place for this post and I can't find anything to answer the question on the site. I think it time I bought a CD set and was wondering which method benefits the project most, financially? I'm in the UK, by the way. kd85.com would entail paying for Belgium - UK shipping which if this is a reasonable cost is a moot point for me. I could go through Cortex or Holborn Books in the UK, but it looks like they will probably get a large chunk of the proceeds. I'm presuming that through kd85.com, the OpenBSD project would profit more than through a reseller? I ask, as I intend to more or less 'subscribe' and continue buying further releases and I don't like to waste even pennies, let alone pounds. That's on top of the wish to make sure that OpenBSD benefit most and not some courier service. Tight as a duck's arse, I know, but it's the thought that counts and the main point in buying is to support the project, not unrelated third parties. Best regards, Craig
Re: learning to code - suggestions needed
I asked a similar question on here recently and had some good books recommended to me. This relates to C programming. http://marc.theaimsgroup.com/?l=openbsd-miscm=113596339716980w=2 As a starting point, until my books arrive, I have been working from this online primer, which is getting me going: http://www.its.strath.ac.uk/courses/c/ Hope that helps in some way. Good luck. Craig On Tue, 2006-01-03 at 14:35 -0800, Joe S wrote: Hello list members. I'd like to direct this post to those that develop code for OpenBSD. I'd like a start developing software, and in turn, contribute to projects like OpenBSD and others. Right now, I'm working as a sysadmin/infosec person. I can write some simple perl and shell scripts, but that's about it. Do you have any recommendations on how I should get started? * Community college courses? * College courses? * Self-study books? I am aware that it will take a number of years before I can contribute quality code. I'm asking the OpenBSD folks for recommendations because I think the project goals are conducive to writing good software. I also think the quality of code in this project is superior to the alternatives. Any help or recommendations would be appreciated. -joe
Re: Dell PowerEdge 4200/266 resets under bsd.mp
re: http://marc.theaimsgroup.com/?l=openbsd-miscm=113578617328369w=2 Sorry to be a pain, I'm trying my best to flounder through this one on my own initiative. In SMP land, if the SMP kernel were to crash at this point in my dmesg, when trying to boot bsd.mp: - Point of crash (this is from the /bsd kernel dmesg) pctr: 686-class user-level performance counters enabled mtrr: Pentium Pro MTRR support Is there anything that I can try, if I try to compile a stripped down GENERIC.MP kernel? By stripped down, I mean that I intend to disable support for other processors (i486 etc) and disable any unnecessary drivers. Those two lines are the next two, from /bsd kernel, immediately after the point where the machine resets, when trying to boot /bsd.mp On the /bsd.mp, these lines are never reached/displayed. I'm not at all comfortable with C or kernel builds, to be honest, but I'm trying to at least help myself, with some experimentation. Looking at my dmesgs from the uniprocessor and MP kernels, linked in my original posts, a quick search for biomask in either dmesg may highlight things better. I'd really appreciate any advice that anybody might be able to offer and although I'm a complete novice in this field, I don't expect my hand to be held. Just give me something to work from, something that I can use as a basis for further research, if you could please? Best regards, Craig
Re: multi-port NIC cards
On a related subject and please forgive any ignorance on my part, how would the interrupt load compare, between a multi-port NIC and the same number of ports via individual single port NICs? For example, a firewall with one WAN port and three LAN ports. One LAN (and of course the WAN port) port would see 'heavier' use for a family's worth of surfing, another would be a DMZ (WAN - DMZ only) and the last would be a highly restricted and far less used 'other' route into the DMZ, but only from the LAN side and NOT the WAN side. Traffic would ultimately be bottle-necked on the WAN side, with an 8Mbit/384Kbit DSL connection with a little AltQ if and when it is required. Regards, Craig On Sun, 2006-01-01 at 16:21 -0500, Daniel Ouellet wrote: Can anyone recommend a good multi-port NIC card e.g. 4-port, that works OK on OpenBSD with a good source supplier. This question was debated a few times in the archive already. So, far there isn't one great card that works very well that still available to purchase new these days. SK based were best, but not available anymore. Intel have the Pro 1000MT, but you need to run the bsd.mp to not get overwhelm by interrupts even on a single processor server. That card works, but not as well as it should really! I would just OK with bsd.mp, but not under very heavy load, but will do what you want for lower demanding setup as long as you DO run the bsd.mp kernel. So, far I haven't found one that is still available to purchase new these days and will provide the same efficiency as older cards were able to do! (: Very sad but true! I sure hope this change soon, but that's where we are now, at a minimum, that's where I am anyway. Daniel
Re: Books and resources for a C beginner.
Hi all. This post is: 1) to test an issue I have had in posting to the list via my ISPs smarthost hence the different email address and 2) in response to various replies I have had to this thread 1) will serve my curiosity hopefully, 2) will be of some help to others. I have limited bandwidth so there is little point in me spamming URLs out, which I hope this is not thought to be an attempt at doing. On the subject of books, not only C related, I have compiled a list of books that I find helpful. I include ISBNs and brief descriptions, where appropriate. Although not very informative as yet, I am beginning to journal my findings as I journey into C programming and as I expand upon it, I hope that it might be helpful to others in my position. This should be my last post to this thread of this nature, so as not to be thought of as taking the mickey. These can be found at: http://slashboot.org/ I have only been using OpenBSD for a couple of months or so and any BSD for at most 6 months, so the suggestions that I offer should be very suitable for those new to the operating systems. Just trying to do my bit, to help others in a similar position. Best regards and a happy and prosperous new year to all, Craig McCormick bsd squiggle slashboot d()t org mccraigy squiggle googlemail d()t com http://slashboot.org/
Re: Dell PowerEdge 4200/266 resets under bsd.mp
Hi again. Can I rephrase this? What do you think is the likelihood of getting this resolved? I've waited a couple of months so far, because I can't seem to post to the list, from anything other than this googlemail account (blueyonder.co.uk is my ISP and until now, all posts going through their smarthost to the list have been silently dropped). If I'm not likely to have any joy with this, I'll keep fBSD on the Dell and use it as a database server, to get SMP going, cross-over'd to my Ultra5 oBSD web server. This works for me, but I'd have rather kept all machines on oBSD. -- Best regards, Craig McCormick mccraigy squiggle googlemail d()t com http://slashboot.org/ http://live.lamppost.info/ # Does anybody have any experience with these machines (Dual Pentium2 Dell PowerEdge), running i386 bsd.mp? http://slashboot.org/sendbug_full_report_smp-issues.txt If posting links isn't the done thing, then I'll happily submit the dmesgs direct to the list. The machine has onboard AIC-7880 and AIC-7860 SCSI controllers and dual Pentium2-266s Boots fine on the stock uniprocessor /bsd kernel, both 3.7 and 3.8 Exactly the same behaviour (resets at same point) on both OpenBSD 3.7 and 3.8 smp kernels. This is what I've done: 1. Stock install, no X, game38 and downwards not selected. Above game38, all selected. 2. Set up both network cards, static IP. 3. Finish install, halt, reboot. 4. Boot up to generate DSA/RSA keys, login, reboot. 5. At boot prompt: set image /bsd.mp Start booting, gets to stage as described above and resets. Is there something else I need to be doing before attempting to boot on the bsd.mp kernel I'd appreciate any pointers, I'm pretty new to OpenBSD and a true beginner with C, so I wouldn't know where to start with debugging this issue. The machine runs debian sarge's smp kernel and FreeBSD 5.4/6.0 builds a good SMP kernel, without problems. Best regards, Craig McCormick [EMAIL PROTECTED]
Books and resources for a C beginner.
Hi all. I hope not to get too much stick for this and that this isn't seen as entirely inappropriate to this list, but here goes. I'm not a computing newbie by any means, having been an enthusiast and 'enjoyed' a career in systems/network management. I think I can program reasonably well in scripted languages, Perl, shell, *cough*PHP*cough*, can structure my code well and am thorough enough to research, avoid and check my code for possible gotchas and such like. Since moving to BSD, I've really wanted to get into learning to program in C and understand that this is probably the best platform to do so. In fact, considering my prolonged involvement in computing, it's almost an embarrassment that I haven't already. I have been working through some online primers and tutorials, which I'm comfortable with and have a good understanding of what I'm doing so far. I plan to get 'the only two books on C that I might ever need' namely; The C Programming Language (2nd Edition) By Brian W. Kernighan - ISBN: 0131103628 and C: A Reference Manual By Samuel P. Harbison Guy L. Steele - ISBN: 013089592X but wonder if anybody has any advice on other materials and resources. Also, as I'm not exactly loaded with cash, would it be appropriate to get the Kernighan book first and then the Reference Manual at a later date, or would it be better to get them both from the start? What, non cynical, advice would you give to somebody who is starting off on the road? Many thanks for any advice offered and apologies if this isn't the place for this post. -- Best regards, Craig McCormick bsd squiggle slashboot d()t org mccraigy squiggle googlemail d()t com http://slashboot.org/
Re: Books and resources for a C beginner.
Well, well, well. How helpful are the OpenBSD community? Very, in my mind. Thanks to the advice from here, I've now decided that I'll start the ball rolling with: Programming in C Kochan ISBN: 0672326663 to get me started. I'm a bit blown away by all the hugely positive reviews of this book, at Amazon. This will be followed by, or ordered at the same time as: The C Programming Language (2nd Edition) KR ISBN: 0131103628 as I'd plainly be a fool not to. Praise be. And at a later date, once it's warranted, I'll add: Advanced Programming in the UNIX Environment Stevens Rago ISBN: 0201433079 which again has some excellent reviews and I'm already impressed with Stevens' work, from TCP/IP Illustrated Vol.1. How could I not be? Many thanks for the advice, it's greatly appreciated. All the best, Craig
